EP0464103A1 - Controller card and associated reading unit - Google Patents

Controller card and associated reading unit

Info

Publication number
EP0464103A1
EP0464103A1 EP90905255A EP90905255A EP0464103A1 EP 0464103 A1 EP0464103 A1 EP 0464103A1 EP 90905255 A EP90905255 A EP 90905255A EP 90905255 A EP90905255 A EP 90905255A EP 0464103 A1 EP0464103 A1 EP 0464103A1
Authority
EP
European Patent Office
Prior art keywords
access
characteristic
card
reading unit
permitted
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP90905255A
Other languages
German (de)
English (en)
French (fr)
Inventor
Hanafi Ameur
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Publication of EP0464103A1 publication Critical patent/EP0464103A1/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/215Individual registration on entry or exit involving the use of a pass the system having a variable access-code, e.g. varied as a function of time
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/22Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder

Definitions

  • the present invention relates to a controller card and
  • the use of cards as a means for gaining access to computers is well known in the art.
  • the card is used as an identifying member which, once it is accepted, permits access only with respect to an individual code related to the identifying code on the card.
  • the system is also time consuming, as the competence of each user is stored. This implies taht the computer must constantly search the competence of the various users to permit access, which implies a long searching time as the computer is occupied by this operating step. Also a large storage capacity is required.
  • US patent 3 764 742 discloses a cryptographic identifying card. This cryptographic card is used as an identification system. After identification the software program takes over and gives the user access to a given account or the like.
  • the controller card according to the invention comprises at least an identifying code which is associated with an individual code and at least one using and/or reference
  • a discriminating operative system input/output characteristic system
  • the identifying code is checked, whereupon the user is directed to state the individual code.
  • the using and/or reference characteristics which are comprised in the card are raed in a reading unit, whereupon access to or access to and use of the computer, the data base or the hardware to which it is connected, is granted in
  • the using and/or reference characteristics are read in co-operation with an input/output system whereupon
  • the characteristics As soon as the identifying code has been confirmed by statement and acceptance of the individual code, whereupon access has been permitted, a reading of the using and/or reference characteristics comprised in the card is started. Thereupon the possessor is permitted access access or access and use of the computer, data base or the like in accordance with the directions and limitations of the using and/or reference characteristics.
  • the using characteristics specify a limitation, for example time, date, area, level characteristics, which are comprised in the controller card. This means that even if someone would know the individual code of a single possessor, he or she cannot find out which limitations this implies as regards access or access and use of the computer or the like.
  • Existing systems permit access according to stored competence data which are related to the identifying code.
  • the controller card permits access or access and use of the computer, data base or hardware of other type during a certain period of the day, during specified days, within a specified area and at a specified level.
  • the possessor can make use of the card only in accordance with the using and/or reference characteristics which are imposed on him, for example a certain time of the day and specified days.
  • the possessor is allowed to enter into his area, for example Cad, word-processing or other area, and only with respect to the correct level characteristic, i.e. that the possessor can for example only update, copy etc.
  • Figure 1 shows a controller card according to the invention.
  • Figure 2 shows the reading unit corresponding to a controller card.
  • Figure 3 shows schematically a series of events taking place when inserting the card and when the identifying code is accepted.
  • Figure 1 shows a controller card 1.
  • the controller card is provided with a magnetic layer 1 , bar codes or the like.
  • an identifying code 2 which corresponds to an individual code 3, and thereupon follows at least one formatted using characteristic 4, which is digitalized, coded or the like. This may be for example: t e m p o r a l u s i n g c h a r a c t e r i s t i c s, i.e. specifying the time when the card is valid of access or access and use,
  • the card Since the card comprises using characteristics, the card obtains a watching function and becomes a controller card which can retain the possessor from unauthorized use of the computer. Thereby, the use of the computer or hardware
  • controller card whereto the controller card is connected can for example be controlled so that the possessor will not obtain access in unauthorized time, date or month, during periods of
  • the use of the card produces an activation of the memory unit of the processing register, which thereby documents the identity of the user, the processing time, the
  • the problem is that it is not possible to show what each individual user has done.
  • the present system permits an identification which gives access to the use of the computer, but it is not checked physically that the
  • FIG. 2 shows schematically the controller card with associate reading unit according to the invention.
  • the controller card 5 is used in co-operation with a reading unit 6 connected to a key-board 7.
  • the reading unit 6 with associated key-board 7 are connected to a processor 8, a memory unit and to the input/output characteristicssystem. These are connected to an I/O identifying system where the identifying code of the individual is read whereupon a specific code for the individual is entered and checked to correspond to the identifying code by the identifying circuit.
  • the memory unit comprises directories connected to an operating register memory unit 10 which records the time of use, the operations performed, when and by whom.
  • Figure 3 shows schematically the sequence of operations
  • using and reference characteristics comprise characteristics for time, date, area, level etc.
  • An operating register memory unit co-operates with the
  • the card includes for example the temporal characteristics
  • the possessor will have access or access and use of the
  • reference characteristics are read whereupon the authorized area is opened: for example Cad/cam directory, word-processing, calculation, book-keeping etc.
  • the area characteristic can be for example invoicing in which case this area is opened.
  • Invoicing may be a directory for invoicing for services.
  • invoicing it may be restrictions for example only to open up new files, i.e. write, invoice new services, or only to update in existing files.
  • output system is a surveillance system which is active
  • the I/O system will prevent access and
  • controller card gives a very good secrecy and integrity protection and is moreover particularly easily administered.
  • the input/ output system constantly carries surveillance of the use of the card so that no transgression occurs. Attempts at transgression are recorded and may release alarm of report.
  • the input/output system permits the establishment of a
  • a controller card includes a reference characteristic to another controller card, access or access and use of the computer or the like is subjected to a further restriction which is included in the reference characteristic. This may be for example that the possessor of the card has access only to the single journal, that of the card
  • the computer is provided with two reading units, this may mean that it is desired to have the using and reference characteristics of one controller card connected to the reference characteristics of another controller card and that checking of the reference characteristics takes place simultaneously before the input/output system gives access according to the restrictions in the reference characteristic or characteristics. In this manner further strengthening of the control has been included.
  • the reference characteristics may be used where double check is necessary, such as opening a strong-room or the like.
  • the invention is not-limited to the above description, but many use characteristics and reference characteristics can be added.
  • the number of reference characteristics and reading units can be multiplied.

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)
  • Control Or Security For Electrophotography (AREA)
  • Credit Cards Or The Like (AREA)
  • Burglar Alarm Systems (AREA)
  • Fittings On The Vehicle Exterior For Carrying Loads, And Devices For Holding Or Mounting Articles (AREA)
  • Vehicle Body Suspensions (AREA)
EP90905255A 1989-03-13 1990-03-05 Controller card and associated reading unit Withdrawn EP0464103A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
SE8900864A SE463484B (sv) 1989-03-13 1989-03-13 Kontrollkort samverkande med tillhoerande avlaesningsenhet
SE8900864 1989-03-13

Publications (1)

Publication Number Publication Date
EP0464103A1 true EP0464103A1 (en) 1992-01-08

Family

ID=20375312

Family Applications (1)

Application Number Title Priority Date Filing Date
EP90905255A Withdrawn EP0464103A1 (en) 1989-03-13 1990-03-05 Controller card and associated reading unit

Country Status (7)

Country Link
EP (1) EP0464103A1 (sv)
JP (1) JPH04505226A (sv)
AU (1) AU5336890A (sv)
CA (1) CA2049030A1 (sv)
FI (1) FI914283A0 (sv)
SE (1) SE463484B (sv)
WO (1) WO1990010919A1 (sv)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
SE9102739L (sv) * 1991-09-20 1992-09-07 Lennart Eriksson Foerfarande och system foer oevervakning av tids- eller passagekontroll

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3866173A (en) * 1973-10-02 1975-02-11 Mosler Safe Co Access control system for restricted area
US4148012A (en) * 1975-09-26 1979-04-03 Greer Hydraulics, Inc. Access control system
US4095739A (en) * 1977-08-26 1978-06-20 A-T-O Inc. System for limiting access to security system program
US4799258A (en) * 1984-02-13 1989-01-17 National Research Development Corporation Apparatus and methods for granting access to computers
AU8232187A (en) * 1986-10-24 1988-05-25 Harcom Security Systems Corp. Computer security system
US4795890A (en) * 1987-02-02 1989-01-03 Light Signatures, Inc. Device authentication system for on and off line use

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO9010919A1 *

Also Published As

Publication number Publication date
SE463484B (sv) 1990-11-26
JPH04505226A (ja) 1992-09-10
WO1990010919A1 (en) 1990-09-20
SE8900864D0 (sv) 1989-03-13
SE8900864L (sv) 1990-09-29
CA2049030A1 (en) 1990-09-14
AU5336890A (en) 1990-10-09
FI914283A0 (fi) 1991-09-12

Similar Documents

Publication Publication Date Title
US5629508A (en) Dual smart card access control electronic data storage and retrieval system and methods
US4885788A (en) IC card
CN1623167B (zh) 安全许可卡,读取安全许可卡的系统和方法
AU671049B2 (en) Apparatus and method for storing data
US5959541A (en) Biometric time and attendance system with epidermal topographical updating capability
US7475812B1 (en) Security system for access control using smart cards
US20060101509A1 (en) Smart card application system and method
US20120131657A1 (en) Apparatus and Method for Authenticated Multi-User Personal Information Database
US20060059365A1 (en) Facility security with optical cards
DK0614559T3 (da) Personidentifikationsindretninger og adgangskontrolsystemer
US20090140045A1 (en) PIV card model # 6800
EP0614159A1 (en) Ic card
EP0237529A1 (en) Distributed data system for medical records
WO2000026823A1 (en) A system for protection of unauthorized entry into accessing records in a record database
EP0464103A1 (en) Controller card and associated reading unit
RU2130643C1 (ru) Способ обеспечения доступа к данным в системе управления базами данных "линтер-вс"
JPS6272049A (ja) 情報処理システムにおけるリソ−ス利用管理方法
JPS61117375A (ja) 入出門管理システム
US6587872B2 (en) Network system and network management method
Ahituv et al. Protecting statistical databases against retrieval of private information
Data a. Introduction
US20040221165A1 (en) Method for signing data
Sadock et al. A security system for a computerized medical record
JPS63278188A (ja) Icカ−ド装置
RU2126169C1 (ru) Способ защиты частной информации пользователя коллективной системы обработки информации

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 19910903

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH DE DK ES FR GB IT LI LU NL SE

17Q First examination report despatched

Effective date: 19931112

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 19940323